Route Origin Authorization
Location:                 rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/fZwyjdG2bT5ePLqyc3XsqYYxgwM.roa (download)

Subject key identifier:   7D:9C:32:8D:D1:B6:6D:3E:5E:3C:BA:B2:73:75:EC:A9:86:31:83:03 
Authority key identifier: 41:31:D1:DD:B6:A3:55:D9:3C:CE:DE:3E:2C:1A:38:D9:49:D1:68:3E
asID:                     AS1239
Prefixes:
    1: 2a11:8b40::/29 maxlen: 29

--
$ test-roa -p rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/fZwyjdG2bT5ePLqyc3XsqYYxgwM.roa | openssl x509 -text
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 11679579 (0xb2375b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4131d1ddb6a355d93ccede3e2c1a38d949d1683e
        Validity
            Not Before: Jan  1 06:54:48 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=7d9c328dd1b66d3e5e3cbab27375eca986318303
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:6f:31:94:8d:aa:55:d9:30:7a:06:7a:49:e4:
                    48:58:7e:51:b7:9a:ea:be:1d:52:85:5f:d2:80:c2:
                    e1:6e:aa:1f:25:e1:70:88:3a:83:7c:b8:e9:69:32:
                    b0:1d:b0:98:91:63:bf:f5:b6:f6:90:89:33:7b:86:
                    14:88:40:c2:bc:4a:44:99:89:2d:a0:3f:7b:95:0c:
                    16:17:e6:f6:52:84:b2:73:0f:d3:65:37:df:a9:47:
                    03:d6:ce:05:6f:9b:dd:e6:34:93:cb:12:bd:09:fe:
                    46:2a:5f:23:f0:73:68:42:97:dc:99:f1:1f:8d:b6:
                    69:f8:36:91:90:01:25:9c:2f:36:2c:27:fa:da:c9:
                    09:7b:2a:08:44:96:c4:2e:34:46:b1:14:9c:21:c7:
                    f9:aa:ed:ac:24:14:06:8d:70:c1:9c:cf:45:d1:99:
                    18:6c:7a:3d:77:f5:26:58:75:cb:dc:12:84:f4:3e:
                    6c:78:25:ff:bb:41:19:0d:fe:62:d2:c0:cb:96:cc:
                    88:8f:51:21:16:0d:3e:5c:69:2b:3f:25:58:12:89:
                    b3:2d:72:f2:3f:8f:34:b1:5a:d4:33:60:7b:a1:5b:
                    f4:cf:a5:ba:f1:33:e5:1b:e4:3e:d0:53:63:90:05:
                    cb:05:98:1e:bd:f5:e7:24:68:95:2e:45:24:d7:b0:
                    c2:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                7D:9C:32:8D:D1:B6:6D:3E:5E:3C:BA:B2:73:75:EC:A9:86:31:83:03
            X509v3 Authority Key Identifier: 
                keyid:41:31:D1:DD:B6:A3:55:D9:3C:CE:DE:3E:2C:1A:38:D9:49:D1:68:3E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTHR3bajVdk8zt4-LBo42UnRaD4.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/fZwyjdG2bT5ePLqyc3XsqYYxgwM.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/700df3-e9a0-453b-bf8a-2fb68ac54e01/1/QTHR3bajVdk8zt4-LBo42UnRaD4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a11:8b40::/29

    Signature Algorithm: sha256WithRSAEncryption
         91:8a:5b:e5:d8:f0:c4:cc:75:a3:bb:e2:f8:5e:f9:b1:c9:0c:
         3d:79:d9:19:49:5c:a9:7a:84:53:76:c2:fe:82:a4:e4:74:75:
         cf:15:b3:e3:51:83:2c:0f:b7:19:0a:55:c3:38:db:de:46:0f:
         07:b0:9c:af:50:7a:01:24:0a:1d:9d:40:97:70:ff:73:84:02:
         8e:8b:29:31:92:11:85:86:91:f0:c5:08:b6:24:5e:65:2a:2a:
         a8:e7:a0:db:d7:7a:57:b5:46:0b:72:35:30:10:84:3e:22:8f:
         8e:c0:8a:13:47:73:99:7e:40:c3:e2:db:dc:8e:a7:58:70:ef:
         95:bf:ce:12:82:bd:5c:51:8f:2e:53:89:8c:fb:d7:10:a0:f9:
         4d:37:48:89:9a:de:36:40:74:6b:14:e4:87:67:68:6b:0e:d1:
         6b:82:49:cb:6b:f9:bb:58:78:79:1f:cf:88:fa:76:72:9d:61:
         a9:9c:4f:27:49:55:eb:f3:11:12:e9:ab:fa:42:19:ef:9e:98:
         34:39:0b:31:30:2d:c0:01:a6:dd:b9:61:09:37:ef:09:69:47:
         32:0b:14:ea:89:32:fb:a5:36:44:82:88:65:66:6e:ce:87:74:
         e4:af:e6:20:c6:1f:f5:06:0b:d6:b0:3b:ed:43:43:0b:dc:f9:
         7a:31:72:43
-----BEGIN CERTIFICATE-----
MIIE8DCCA9igAwIBAgIEALI3WzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MTMxZDFkZGI2YTM1NWQ5M2NjZWRlM2UyYzFhMzhkOTQ5ZDE2ODNlMB4XDTIyMDEw
MTA2NTQ0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2Q5YzMyOGRkMWI2
NmQzZTVlM2NiYWIyNzM3NWVjYTk4NjMxODMwMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOFvMZSNqlXZMHoGeknkSFh+Ubea6r4dUoVf0oDC4W6qHyXh
cIg6g3y46WkysB2wmJFjv/W29pCJM3uGFIhAwrxKRJmJLaA/e5UMFhfm9lKEsnMP
02U336lHA9bOBW+b3eY0k8sSvQn+RipfI/BzaEKX3JnxH422afg2kZABJZwvNiwn
+trJCXsqCESWxC40RrEUnCHH+artrCQUBo1wwZzPRdGZGGx6PXf1Jlh1y9wShPQ+
bHgl/7tBGQ3+YtLAy5bMiI9RIRYNPlxpKz8lWBKJsy1y8j+PNLFa1DNge6Fb9M+l
uvEz5RvkPtBTY5AFywWYHr315yRolS5FJNewwu0CAwEAAaOCAgowggIGMB0GA1Ud
DgQWBBR9nDKN0bZtPl48urJzdeyphjGDAzAfBgNVHSMEGDAWgBRBMdHdtqNV2TzO
3j4sGjjZSdFoPjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FUSFIzYmFqVmRrOHp0NC1MQm80MlVuUmFENC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzEvNzAwZGYzLWU5YTAtNDUzYi1iZjhhLTJmYjY4YWM1NGUwMS8x
L2Zad3lqZEcyYlQ1ZVBMcXljM1hzcVlZeGd3TS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzEv
NzAwZGYzLWU5YTAtNDUzYi1iZjhhLTJmYjY4YWM1NGUwMS8xL1FUSFIzYmFqVmRr
OHp0NC1MQm80MlVuUmFENC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAg
BggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFAyoRi0AwDQYJKoZIhvcNAQELBQAD
ggEBAJGKW+XY8MTMdaO74vhe+bHJDD152RlJXKl6hFN2wv6CpOR0dc8Vs+NRgywP
txkKVcM4295GDwewnK9QegEkCh2dQJdw/3OEAo6LKTGSEYWGkfDFCLYkXmUqKqjn
oNvXele1RgtyNTAQhD4ij47AihNHc5l+QMPi29yOp1hw75W/zhKCvVxRjy5TiYz7
1xCg+U03SIma3jZAdGsU5IdnaGsO0WuCSctr+btYeHkfz4j6dnKdYamcTydJVevz
ERLpq/pCGe+emDQ5CzEwLcABpt25YQk37wlpRzILFOqJMvulNkSCiGVmbs6HdOSv
5iDGH/UGC9awO+1DQwvc+XoxckM=
-----END CERTIFICATE-----

Generated at Sun Jan 30 13:16:46 2022 by LibreSSL & rpki-client.